43daf27c7a4a1c38127e9bed1c3da72a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43daf27c7a4a1c38127e9bed1c3da72a_JaffaCakes118
Size

1.4MB
MD5

43daf27c7a4a1c38127e9bed1c3da72a
SHA1

34536bf2f10813685e0c4c1e05925e95b685f122
SHA256

6ee45835fa450320266fe3dbf3e5e4e582aa95b7f8883e841ae1e0eecd83eeaf
SHA512

e74ae1a992a94e5726265c22cf4d126b21978c482b27ff154bccca2a0a3aea714d91ee92de36e2163fd1e0a5f9ddbfefc031fdff7183e6ce89c184cd4bd9f71c
SSDEEP

24576:FoLDKBT8q2XQkzy4DC/YHRA1+sGMPhyJMZ7C4vbtM+1n2+ILfMVzzYtfI:FKW0XQkO4DCgG1+sGIYmVDtM/Sz2I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/teamviewer.manager.v6-patch.exe

Files

43daf27c7a4a1c38127e9bed1c3da72a_JaffaCakes118
.rar
TeamViewer Manager 6.0.940.0 [vokeon]/For More ..Visit Here.url
TeamViewer Manager 6.0.940.0 [vokeon]/LnDL/LnDL.rar
.rar
LnDL.nfo
file_id.diz
teamviewer.manager.v6-patch.exe
.exe windows:4 windows x86 arch:x86

09d0478591d4f788cb3e5ea416c25237

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

Sections

.text
Size: 284KB - Virtual size: 928KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
TeamViewer Manager 6.0.940.0 [vokeon]/LnDL/VIRUS-DISCLAIMER.txt